ISS WORLD 2010 - Conference Agenda

About Pre-Conference Tutorials (11 October 2010)

The full agenda for Pre-Conference Tutorials is below. For information on any other track, please click the links below.

Track 1: ISS for Telecom Operator Lawful Interception
Track 2: ISS for Criminal Investigation
Track 3: ISS for Mobile Location, Surveillance and Intercept
Track 4: DPI for Lawful Interception, Network Security and Traffic Management
Track 5: ISS for Intelligence Gathering and Analysis
Track 6: Special OSINT Sessions: Naked Intelligence
Track 7: LEA, Intelligence and Defense Analyst Training and Product Demonstration Track
Track 8: Spanish Language ISS Training Track
Pre-Conference Tutorials (11 October 2010)

Pre-Conference Seminars and Tutorials

Monday, October 11, 2010

8:30-12:10	Pre-Conference Seminar: Understanding Telecommunications Technologies for LEA Investigators and Intelligence Analysts Presented By: Dr. Jerry Lucas, President, TeleStrategies This pre-conference seminar is for law enforcement, interior security and intelligence analysts who have to understand telecommunications technology buzz words and jargon in order to communicate with telecom operator engineers regarding their Intelligence Support System (ISS) requirements regarding lawful interception, investigative analysis and intelligence gathering with intercept case study challenges. Seminar sessions include:
8:30-9:30	Session 1 Understanding Wireline Telecom Infrastructure and Interception What do LEAs need to know about the public switched telecommunications networks, circuit switching, fiber optics, SS7, SDH, DSL, billing systems and call detail records, standards for lawful intercept, basic LI elements (access, delivery and collection function), call information and call content data collection, SS7 probes and relevant telecom network elements, Circuit Switching vs. VoIP, SIP, SoftSwitches, Gateways, VoIP over Broadband, DSLAM's and PSTN Interconnection.
9:50-10:50	Session 2 Understanding Mobile Wireless Infrastructure and Interception Infrastructure basics (GSM, GPRS, EDGE, UMTS, HSPA and LTE), Wi-Fi, WiMax and Femtocells, How a cellular call is processed, back office infrastructure, HLR, VLR, Backhaul and PSTN interconnection, SMS, MMS, EM, data services, fixed mobile convergence and IMS, and The basics of mobile location technologies, A-GPS, AOA, TDOA, U-TDOA, WLS and location accuracy.
11:10-12:10	Session 3 Understanding the Internet and Lawful Interception What Investigators Have To Know about IP call Identifying Information, Radius, DHCP, DNS, etc. and Tracking an Internet Address to a Source, Investigations Involving E-Mail, Websites, Instant Messaging, Chat Rooms and Message Boards, P2P Networks and Deep Packet Inspection.
8:30-12:10	Online Social Media and Investigations (Three One Hour Sessions) Charles Cohen, Cohen Training and Consulting, LLC Charles Cohen also holds the position of Commander, Special Investigations and Criminal Intelligence, Indiana State Police, USA The presentation is comprised of 3 one-hour sessions. The presentation gives attendees an up-to-date understanding of how social networking sites work and how members act and interact. Through an exploration of case studies, the second hour will focus on information that is available on various sites and how to integrate that information into criminal investigations and criminal intelligence analysis. The meshing of geolocation, social networking, and mobile devices allow officers to employ new investigative techniques not previously available. The third hour will show, through example, the risk inherent when investigative professionals use online social networks. It will also explore various techniques to conceal location and identity online.
1:20-3:40	Cyber Money Laundering ( Two one hour sessions) While the traditional methods of money laundering are still being employed, new and evolving Internet and technology-based methods are rapidly becoming the method of choice. From eCash to online prepaid debit cards and from virtual currencies to mobile payment systems, the Internet is a panacea for the active or aspiring entrepreneurial criminal. This tutorial is designed specifically for the active private sector investigator, criminal intelligence analyst, detective, or agent that wants to track the proceeds of unlawful activity and the movement of funds within a criminal organization. Charles Cohen, *Cohen Training and Consulting, LLC*
4:00-5:00	What Investigators Need To Know About Hiding On The Internet Both public and private sector investigators and analysts need to understand how people conceal their identity on the Internet. Technology may be neutral, but the ability to hide ones identity and location on the Internet can be both a challenge and an opportunity. This tutorial will focus on two main areas: An exploration and comparison of various ways of hiding ones identity and location while engaged in activates on the Internet. This provides an opportunity for investigators to engage in covert online research while also providing a means for criminals to engage in surreptitious communication in furtherance of nefarious activities. The risks posed to those in the public arena and those charged with protecting them associated with online social media and online social networking. The online social networking activities of employees, along with ever-increasing availability of information in the online public domain, present real challenges to companies and governments. Charles Cohen, Cohen Training and Consulting, LLC
8:30-5:00, LEA and IC ONLY, Session	Improving Communications Intel Analysis and Reporting in Federal Investigations Cutting edge analytical and presentation techniques to exploit Communications Records (Landline, cell, VoIP, Satphone, Prepaid calling cards, and emails) Bob Lottero, President, NTI Law Enforcement Services 8:30-9:30 Processing paper and electronic communications records from subpoenas and pen orders for import to computerized Intel systems 9:50-10:50 Building an Effective Analytical Plan 11:10-12:10 Enhancing the results of basic contact communications analysis (frequency, common call, etc.) 1:20-2:20 Advanced Communications Temporal Analytical Theory 2:40-3:40 Development of High-Percentage Leads (probable possibilities) 4:00-5:00 A New Approach to Writing and Presenting Analytical Reports
8:30-12:10	Building and Operating World Class Laboratory for eXtreme Digital Forensics and Cloud Computing Forensics Alvaro Alexander Soto, Digital Forensic Lab Director, ASOTO Technology Group
11:10-12:10	The Evolving Service Provider Landscape and its Impact on Managing Network Intercepts Jim Donnelly, Vice President of Sales – North America, Glimmerglass
1:20-5:00	Introduction to Visual Analytics Mr. Westphal will present "Visual Analytics" an interactive, thought compelling presentation on the use of various visualization and representation techniques for understanding a variety of domains ranging from financial crimes and money laundering to narcotics-trafficking and counter-terrorism. Much of the content presented is based on Mr. Westphal's recent book, "Data Mining for Intelligence, Fraud & Criminal Detection: Advanced Analytics & Information Sharing" Chris Westphal, CEO, Visual Analytics 1:20-2:20 Overview of Analytical Process Using Visualization 2:40-3:40 Data Quality and Integration Approaches Pros/Cons 4:00-5:00 Real World Patterns (e.g. Money Laundering, Fraud, Crime)
1:20-5:00	IP Intercept Training Seminar This technical training session addresses the basics of TCP/IP packet sniffing, deep packet inspection and IP application decoding. Klaus Mochalski, CEO and Technical Support Staff, ipoque 1:20-2:20 Understanding TCP/IP for Packet Sniffing and Traffic Analysis 2:40-3:40 DPI Basics for LEAs, Intelligence Analysts and Telcom Operators 4:00-5:00 Basics of IP Application Decoding
1:20-2:20	Off-network Voice and Video Services over IP Yuval Altman, Director of Product Management, Verint Systems
2:40-3:40	Demonstration of Computer Forensics Tools, Search Techniques, and Evaluation Criteria Mun-Wai Hon, CISSP, CSSLP, Principal System Engineer, NOBLIS
4:00-5:00	Cell Phone Call and Cell Tower Records for Investigators Call Detail Records, or CDR’s, are the non-voice records of every communications event experienced by a mobile phone. Investigators who can read, understand and interpret CDR’s can find a wealth of potential evidence. In this session, Cellular Data Resources will demonstrate analysis and presentation techniques using a sample set of CDR’s to provide attendees with practical skills they can use in their investigations. Brent Bailey, Cellular Data Resources

Return to Agenda